General
-
Target
33040cb9989c4f126e0f2f8f4da25920N.exe
-
Size
55KB
-
MD5
33040cb9989c4f126e0f2f8f4da25920
-
SHA1
ac00fcbd395fdd47b08db38e09a52906c192ef35
-
SHA256
f8f4fc977b6d81dbf767ac232ce4c881ab45ef0307d5f447f77c4a1357e6a586
-
SHA512
936aa31c4afad7c54141e148c3f8e043bd35f4b41366efe25b6a54f5466dcd82b827b861ab2003a8863f5833ed0f9be2d1dd972a5a9c2f5936de0aab4dee645b
-
SSDEEP
1536:2JWNMDncNi9y6iRD3wsNMDUXExI3pmfm:xNMDn9ULRD3wsNMDUXExI3pm
Score
10/10
Malware Config
Extracted
Family
njrat
Version
<- NjRAT 0.7d Horror Edition ->
Botnet
Victim
C2
zealous-pine-98499.pktriot.net:22354
Mutex
f40390d9f0cbc6c0e7ceb44dd64aabb2
Attributes
-
reg_key
f40390d9f0cbc6c0e7ceb44dd64aabb2
-
splitter
Y262SUCZ4UJJ
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
33040cb9989c4f126e0f2f8f4da25920N.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections